rklockner Posted September 25, 2014 Share Posted September 25, 2014 I have 500 users using software I have developed, and 495 do not have a timeout problem. Our default is to timeout after 60 minutes, but one particular office times out randomly and without warning. The normal procedure is, like online banking, a pop up comes up to let them know they will be logged out in 60 seconds, or they can click continue to stay logged in. The timer is based on JS, but on each page load a PHP function checks to see if they are timed out, and if they are, redirect them to the login page. The JS pop up never occurs, so obviously the countdown hasn't happened, but when they click on a link, they are redirected to the login page. Since the issue only occurs in one office, it leads me to believe it is a firewall or anti-virus issue, but I'm not sure... Anyone have any thoughts on this? Quote Link to comment Share on other sites More sharing options...
ginerjm Posted September 25, 2014 Share Posted September 25, 2014 Of course the first thing to come to mind is "what makes this office unique?". Have you done any analysis of that? Are there timezone differences involved perhaps? Is JS not enabled perhaps? Quote Link to comment Share on other sites More sharing options...
rklockner Posted September 25, 2014 Author Share Posted September 25, 2014 I don't have access to the location, so I can't really troubleshoot their location, however, I have told them that it is something in their office and to look into their firewall and anti-virus. As to JS not being enabled, the site his heavily js reliant. To the point that the homepage won't load unless JS is enabled. Quote Link to comment Share on other sites More sharing options...
mac_gyver Posted September 25, 2014 Share Posted September 25, 2014 sessions "going away" when navigating between pages or submitting forms is usually due to the host-name/sub-domain (the www.) in the url changing and the session.cookie_domain setting isn't set up to match all variations of the domain name, so that the session only matches the variation of the domain where it was created. this actually results in two different sessions for the visitor. one way this could affect only one location is if they have a common link they were given that they use to access the site, that has one variation of the host-name/sub-domain, but the site itself uses links/form-actions that have a different variation of the host-name/sub-domain. so, what is the session.cookie_domain setting for the site and/or is it redirecting requests without the www. on them to urls with the www on them? Quote Link to comment Share on other sites More sharing options...
rklockner Posted September 25, 2014 Author Share Posted September 25, 2014 Good thought, but I was holding back a twist. The 500 users are spread across three sub-domains (the one having the issue has roughly 60 of those users), the format is sub.domain.com. By typing www. to the front of the url actually sends you to an error page. Just for fun, I tried modifying the URL in different ways that are still valid, and it didn't log me out... Another side note, I use ajax to load each page into container div, so the entire page only loads on the initial log in (or when the page is refreshed), I use JS to update the url on a "new page load" like sub.domain.com/#new_page_name Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.